Have you noticed? Our blog got a neat new design – all that’s missing is a catchy name.
The post Contest: Give our Avira Blog a new name appeared first on Avira Blog.
Monthly Archives: December 2016
Insecure Transmission of Qualcomm Assisted-GPS Data [CVE-2016-5341]
Posted by Nightwatch Cybersecurity Research on Dec 05
[Also posted online:
https://wwws.nightwatchcybersecurity.com/2016/12/05/cve-2016-5341/]
Summary
Assisted GPS/GNSS data provided by Qualcomm for compatible receivers
is often being served over HTTP without SSL. Additionally many of
these files do not provide a digital signature to ensure that data was
not tampered in transit. This can allow a network-level attacker to
mount a MITM attack and modify the data while in transit. While HTTPS
and…
DiskBoss Enterprise 7.4.28 Buffer Overflow
DiskBoss Enterprise version 7.4.28 GET buffer overflow exploit.
CFP – 31c0n – Feb 2017, New Zealand
Posted by 31c0n on Dec 05
==CALL FOR PRESENTATIONS ARE NOW OPEN===
Be one of the very first presenters in the 31c0n series. The
inaugural event will be held from 23-24 Feb 2017 in Auckland, New Zealand.
If you think you have something to add to our speaker line up, let us know.
We’re all about giving attendees an experience like no other so will only
accept talks of the highest calibre – if you think you fit the bill, put
your best submission forward ASAP.
We accept…
DAVOSET 1.2.9
DAVOSET is a tool for committing distributed denial of service attacks using execution on other sites.
Vuln: Apache Tomcat Security Manager CVE-2016-5018 Security Bypass Vulnerability
Apache Tomcat Security Manager CVE-2016-5018 Security Bypass Vulnerability
GLSA 201612-14: util-linux: Arbitrary code execution
GLSA 201612-15: ARJ: Multiple vulnerabilities
Video: Everything you need to know about ransomware
The post Video: Everything you need to know about ransomware appeared first on Avira Blog.
Video: What is Avira Connect
The post Video: What is Avira Connect appeared first on Avira Blog.